drip

Legal

Privacy Policy

How we collect, use, disclose, and protect information relating to users of the Drip platform.

← Back to Help
Last Updated: December 29, 2025Contact: privacy@drippay.dev

Section 1

Introduction

Drip ("Drip," "we," "us," or "our") operates a Web3 billing and metered-usage infrastructure platform available at https://drippay.dev (the "Service").

This Privacy Policy explains how we collect, use, disclose, and protect information relating to users of the Service. Drip does not custody digital assets, does not control private keys, and does not operate as a wallet provider.

By accessing or using the Service, you acknowledge that you have read and understood this Privacy Policy.

Section 2

Information We Collect

2.1 Information You Provide to Us

We collect information that you voluntarily provide when using the Service, including:

Account Information

  • Email address
  • Organization name
  • Account role or permissions

Authentication Information

  • Public blockchain wallet addresses connected via third-party wallet providers
  • Email-based authentication details

Billing and Configuration Data

  • Metered usage configuration
  • Pricing parameters
  • Deposit thresholds
  • API key identifiers (excluding secret values)

Support Communications

  • Emails or other communications you send to us

2.2 Blockchain and Public Ledger Information

The Service interacts with public blockchain networks, including Base. Blockchain data—such as wallet addresses and transaction records—is publicly available by nature and not controlled by Drip.

Note: A blockchain wallet address alone does not necessarily identify an individual; however, such information may become associated with other information you provide when using the Service.

Drip processes blockchain data solely to:

  • Operate and reconcile metered billing
  • Detect and prevent fraud or abuse
  • Maintain the integrity and transparency of the Service
  • Comply with applicable legal obligations

Drip cannot modify, delete, or control blockchain records.

2.3 Information Collected Automatically

When you access or use the Service, we may automatically collect limited technical information, including:

IP address
Request and access logs
API usage metrics
Error and diagnostic logs

We do not engage in advertising-based tracking or behavioral profiling.

2.4 Cookies and Similar Technologies

We use strictly necessary cookies or similar technologies to enable authentication and session management, including through third-party wallet providers such as Privy.

We do not use cookies for advertising, cross-site tracking, or targeted marketing.

Section 3

Information from Third Parties

We may receive information from third-party service providers that support operation of the Service, including:

  • Wallet authentication providers (e.g., Privy)
  • Blockchain infrastructure providers (e.g., RPC providers)
  • Cloud hosting and infrastructure providers
  • Monitoring and security service providers

Such information is used solely to operate, secure, and maintain the Service.

Section 4

How We Use Information

We use the information we collect to:

1.Provide, operate, and maintain the Service
2.Perform metered billing and settlement
3.Authenticate users and manage accounts
4.Detect, prevent, and investigate fraud or abuse
5.Respond to inquiries and provide support
6.Comply with applicable legal and regulatory obligations

We do not sell personal information or use it for targeted advertising.

Section 5

How We Share Information

5.1 Service Providers

We may share information with third-party service providers who assist us in operating the Service, subject to confidentiality obligations.

5.2 Legal and Compliance

We may disclose information if we believe disclosure is necessary to comply with applicable law, legal process, or governmental request, or to protect the rights, safety, or property of Drip or others.

5.3 Business Transactions

Information may be disclosed in connection with a merger, financing, acquisition, or similar transaction.

Section 6

Third-Party Wallets and Services

The Service integrates with third-party wallet providers. Your interactions with those providers are governed by their own terms of service and privacy policies. Drip does not control and is not responsible for the privacy practices of third parties.

Section 7

Data Retention

We retain information for a reasonable period as necessary to:

  • Provide and maintain the Service
  • Comply with legal, tax, and accounting obligations
  • Resolve disputes and enforce agreements
  • Maintain security and prevent abuse

Retention Periods

Data CategoryRetention PeriodDescription
Usage logs12 monthsAPI access logs, metered usage events, and request metadata
Account dataDuration of account + 2 yearsEmail, organization name, wallet addresses, and configuration
Billing records7 yearsTransaction records and settlement history (legal requirement)

Important: Certain information, including blockchain records, cannot be deleted due to their immutable nature. Inactive accounts may be deleted after a reasonable period, except where retention is required for the purposes described above.

Section 8

Security

We implement administrative, technical, and organizational measures designed to protect information. However, no system is completely secure, and we cannot guarantee absolute security.

You are responsible for maintaining the security of your wallet credentials and authentication methods.

Section 9

Your Rights and Choices

Depending on your location, you may have rights to access, correct, or delete personal information, subject to legal limitations and exceptions.

EEA and UK Users (GDPR)

For purposes of the GDPR, Drip is the data controller. We process personal data based on:

  • • Performance of a contract
  • • Legitimate interests
  • • Legal obligations
  • • Consent, where applicable

We use appropriate safeguards for international data transfers.

California Residents (CCPA)

California residents have the right to know what personal information we collect, request deletion, and opt out of sale (we do not sell personal information).

To exercise these rights, contact privacy@drippay.dev

Section 10

Children

The Service is intended for users 18 years of age or older. We do not knowingly collect personal information from children.

Section 11

International Users

Information may be processed in the United States or other jurisdictions where our service providers operate. Laws in those jurisdictions may differ from the laws of your country of residence.

Section 12

Policy Changes

We may update this Privacy Policy from time to time. The "Last Updated" date indicates when the Policy was most recently revised.

Section 13

Contact Us

If you have questions or requests regarding this Privacy Policy, you may contact us at:

privacy@drippay.dev

Data Controller

Michael Justin Levin

United States

Back to Help Center